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What is claimed is: 



1. A database management apparatus, comprising: 

an encryption key specification unit specifying 

whether a key for encryption of data of a column item 

of a database using a column key common among column 

items or a row key speci'fic to each row; 

an encryption unit/ encrypting each column item 

of the database using a key specified by said 

encryption key specification unit; and 

a storage unit storing in memory the database 

encrypted by said encryption unit. 



a database search 
retrieval using a row 



2 The apparatus according to claim 1, further 
comprising 

unit encrypting data input for 
key common among predetermined 
column items when column items encrypted using the 
common row key is to be retrieved, comparing the 



encrypted retrieving 
encrypted database 



data with each item data of the 
stored in the memory, and 



performing retrieving process. 



3. The apparatus according to claim 1, wherein 

said encryption unit encrypts data of a 
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predetermined column i^zem using a combination of a row 
key specific for each row and a column key common 
among corresponding column items. 
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4. The apparatus according to claim 1, wherein 

said encryption unit generates sequential vectors 
in a multidimensionai space based on a predetermined 
function, and encrypting a database using the row key 
and the column key as a constant of the function in 



an encryption system 



using elements of the vectors as 



a key stream of encryption 



A database system which has a first information 



terminal containing 
information terminal 
terminal to search 



25 



a database, and a second 
requesting the first information 
the database, and connects the 
first and second information terminals through a 
network, wherein: 

on the first intormation terminal side, data of 
a first type of column item of the database is 
encrypted using a column key common among the column 
items, and data of ci second type of column item is 
encrypted using a rowj key using a column key specific 
to each row; 

when the second! information terminal requests 
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searching the database for the first type of column 
item, retrieving data input is encrypted using a 
column key common among the column items, and the 

data is transmitted to the first 
through the network; and 
Information terminal side, the 



encrypted retrieving 
information terminal 
on the first 



encrypted database ys searched using the retrieving 
data, and the encrypted data obtained as a search 
result is returned t'O the second information terminal 
through the network. 

6 . The database management apparatus which manages 



a database in which data is encrypted using a column 



key common amoni 
comprising: 

an encryption 



predetermined column items. 



unit encrypting input retrieving 
data using the column key when data is retrieved from 
predetermined column items ; and 

a retrieval unit retrieving data by comparing the 
encrypted retrieving data with each item data of the 
encrypted database. 



7. The apparatus Recording to claim 1, comprising: 
a plaintext data obtaining unit obtaining 
plaintext data to bel encrypted; 
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a vector genercition unit sequentially generating 
vectors defined iq a closed area of an n(n>l)- 

sing a function determined using 
key or a row key; and 



dimensional space u 
at least the column 



a logical opepration unit performing a logical 
operation in bits units using the plaintext data 
obtained by said plaintext data obtaining unit and 
elements of the vectors generated by said vector 
generation unit, and generating encrypted data. 



8. A computer-rjeadable storage medium storing a 
program used to {direct a computer to perform the 
process , comprisiijig : 

encrypting data of a first type of column item 
of a database us:.ng a column key common among the 

encrypting data of a second type of 
a row key specific for each row; and 



column items, and 
column item using 



searching encrypted database obtained as a result 



of the encrypting 



function. 



25 



9 . A computer-rfeadable storage medium storing a 
program used to direct a computer to perform the 
process , comprising : 

encrypting influt retrieving data using the column 
is r^1 



key when data 



itrieved from predetermined column 
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items; knd 

ret\rieving data by comparing the encrypted 
retrieving data with each item data of the encrypted 
database. 



10* A database management apparatus, comprising: 

a first encryption unit encrypting daita of a 
first type\of column item of a database using a column 
key common pmong the column items, and encrypting data 
10 of a secorM type of column item using a row key 
specific for each row; 

a secoild encryption unit encrypting the row key 
used in encllypting the data of the second type of 
column item of the database by said first encryption 
15 unit using another key common among rows; and 

a storage unit storing in memory the database 
encrypted by said first encryption unit with the row 
key encrypted by said second encryption unit. 



20 11. The appara-Dus according to claim 10, wherein 

said row key is generated by a row number 
assigned to each \row of said database and a random 
number . 



25 



12. An encryption apparatus according to claim 10, 



10 
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comprising : 

a yector generation unit sequentially generating 
vectors \ defined in a closed area of an n(n>l)- 
dimensiobal space using a function determined using 
each of -^he keys in the database management apparatus 
according to claim 10; and 

a l<bgical operation unit performing a logical 
operation in bits units using the plaintext data 
obtained by said plaintext data obtaining unit and 
components of the vectors generated by said vector 
generatioii unit, and generating encrypted data, 



13, A datlabase system having a first terminal unit 
for managing a database, and a second terminal unit 

15 for searchiVig the database independent of the first 
terminal undQt, wherein: 

on the first terminal unit side, the database is 
encrypted and the encrypted database is stored in a 
portable storage medium, and the storage medium is 

20 distributed; a^d 

on the second terminal unit side, the encrypted 
database is searched using the distributed storage 
medium, and data obtained as a search result is 
decrypted and displayed. 

25 
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14. The system ac 



conunon among the 



:c:ording to claim 12, wherein: 
said first teiminal unit encrypts data of a first 
type of column item of the database using a column key 

column items, encrypts data of a 
second type of column item using a row key using a 
column key specific to each row, and encrypts the row 
key using another key common among rows; and 

said encrypt€id database is stored with the row 
key after the encryption in a storage medium. 

15. The system according to claim 12, wherein 

said storage medium stores the encrypted database 
in said first teirminal unit, and a predetermined 
program for searching encrypted database. 

16. A computer-readable storage medium storing a 
program used to direct a computer to perform the 

risinal 



process, comprj 



encrypting data of a first type of column item 
usin^ 



of a database 



a column key common among the 



column items, and encrypting data of a second type of 
column item using a rlpw key specific for each row; and 
encrypting a rol key used in encrypting data of 
a second type of column item of the database by said 

\ 

first encrypting function using another key common 
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among 



rows . 
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17. An encryption systetn, comprising: 

a rotation matrix generation unit generating an 
n-dimensional rotation /matrix i^n) ^or rotating a 
vector defined in a/ closed area of an n(n>l)- 
dimensional space usirig each component of the vector 
and an angle depenaing on a parameter set P such 
that an ( n-1 ) -dimefisional rotation matrix R^.i (f^n-i) 
can be contained^ as an ( n-1 X-dimensional small matrix; 

a vector/ generation unit generating a vector r^ 
such that vectc^rs /r^ (j^Ov sequentially generated 
using a nonlinear itunction containing at least the 
rotation matrix / ^ cannot match each other in the 
n-dimensiqnal space; and 

/ /\ 

a binary oper^tUon unit generating encrypted data 



by perforiT 
and compo 




ing ^ hikiaLTY^^op^T^^on using plaintext data 
s of the vector generated by said 



vector generatior) unit . 

18- The system /according to claim 16, wherein 

said nonlinear function of said vector generation 
unit is a func/tion containing a fixed vector for 
spatial translation of a rotation vector, and said 
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vector generati/on unit sequentially generating vectors 



i 
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such that: the generated vectors cannot match each 
other . 



19. The system accorfding to claim 16, wherein 

said n-dimensional rotation matrix (^n) used 
by said vector genefration unit is generated by a 
product of an n-|dimensional rotation matrices 
generated by chang^-^ig ih^ertion places of (n-1)- 
dimensional smal^ matrix cdrresponding to an (n-1)- 

/ . J - \ 

ro/tation 



dimensional 



20- 



The sys 
said bi 




matrix 



.-1 (^^n-i)- 



em according to claim 16, wherein 
nary o peraVtion ( op ) indicates that an 



21 




exclusive logical feurh Operation (XOR) is performed 
after perforiqing a s|c;ramb\ing operation S, represented 
by 



The system according to claim 16, wherein 
encrypted data Cj is generated by performing the 



binary operation bn plaintext data and a vector 
obtained by performing the binary operation on a j -th 
vector rj generated by a nonlinear function used by 
said vector generfition unit and a check sum Ej.i of ( j- 



V 
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l)-th generated 
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encrypted data C^,^, 



vector defined 



22, A decryption system, comprising: 

a vector generation unit generating vectors r^ 
such that vectors r^ sequentially generated using a 
nonlinear functjion containing at least an n- 
dimensional rotation matrix (^^n) rotating a 



closed area of an n(n>l)- 



dimensional space using each\ component of the vector 
and an angle depending on a parameter set P cannot 
match each othei ini the n-dimensional space; 

an inv}4rs€i banary operation unit receiving 



encrypted data. 



from\an encrypting side, generated by 
performing k bihary oberation on plaintext data and 
components lof a / vector r^ generated by a method 
similar to h. method of skid vector generation unit, 
and decryptiVig^the plaintext~~~3ata by performing an 
inverse binary operation corresponding to an inverse 



operation to the binary operation using the vector rj 
generated by slid vector generation unit and the 
encrypted data . 



23 . The system 
said rotat 
rotation matrix 



according to claim 21, wherein 
ijon matrix (^n) generated by said 
generation unit according to claim 17. 



\ 
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24 . The system 

said nonlineai 
generation unit is 
vector for spatial 
and said vector gene[rat 
vectors such that 
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ing to claim 21, wherein 
function used by said vector 
a function containing a fixed 
translation of a rotation vector, 
ion unit sequentially generates 
vectors cannot match each other. 



the 



25. The system according to claim 21, wherein 



3fl rot^ion matrix (fi^) used by 



an n-dimensioi 



said vector generation unit is generated by a product 



of an n-dimenslona3 



rotation matrices generated by 



changing inseiA:ion places of V n-1 ) -dimensional small 



matrix corresponding 
matrix R^.^ • 

26. The system accd 



( n-1 ) -dimensional rotation 




rding tb^ claim 21, wherein 
said biii^iry js^psration (opT^indicates that an 
exclusive logical sum operation (XOR) is performed 
after performing a scrambling operation S, represented 
by 

op = iOR • S; and 

said inverse binary operation (op'^) indicates 
that an inverse operation S"^ inverse to the 



V 



operation 



scrambling 
an exclusive logi 

op 
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S is performed after performing 
cal sum (XOR), represented by 



-1 _ 



S"^ XOR 
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27. The system according to claim 6, wherein 



a check sum dj.^ of a (j-l)-th received encrypted 



data 



is generated, the binary operation is 



performed using a\x^^^sult of the generation and a 
vector r^ generc 



of^ t 



by the nonlinear function used by 
said vector g^era-^ion unit, th^n the inverse binary 
operation is ^erforAied using a vector generated by the 
binary operation and a j-th received encrypted data 
Cj, thereby c.ecryptijng^ plaintext data . 

28. A vector\ generapic{>ri\system for use in a database 
management a^paratu^ /and\an ^ricrypt ion/decrypt ion 
system, wherei\ 

when an rNr^diin^sional rotation matrix R for 

defined in a closed area of an 
n( n>l ) -dimensional sjJace using each component of the 
vector and an angle depending on a parameter set P is 

ty of rotation matrices of a 
snsion are arranged as diagonal 



rotation of a vector 



generated, a plurali 
smaller number of dim 



blocks, and pseudo-rdtation matrices Q generated as 




10 
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0 element:s are used in remaining portions. 

29. The system according to claim 28, wherein 
when any/n-dlLmen^onal rotation matrix R 



smaller number of 



blocks 



, a\d 



for 



rotation of/ a vector defined in a closed area of an 
n(n>l ) -dimensional space\using each component of the 
vector and an angl.e depending on a parameter set P is 
generated, a pluirality of rotation matrices of a 

of d\i 



imension are arranged as diagonal 



a matrix P formed by performing a similar 
transform represeLted by P = S-Q-S*^ by a replacing 
matrix S on a pseuao-rotation matrices Q generated as 
0 elements are usejd in remaining portions. 



